Tp-Link Archer A7 Firmware vulnerabilities
3 known vulnerabilities affecting tp-link/archer_a7_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-42232P2CRITICALCVSS 9.8v2105192022-08-23
CVE-2021-42232 [CRITICAL] CWE-78 CVE-2021-42232: TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/b
TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the received data packet as part of the command. This will cause an attacker to execute arbitrary commands on the router.
nvd
CVE-2021-27245P3HIGHCVSS 8.1fixed in c7\(us\)_v5_210125fixed in a7\(us\)_v5_2002202021-03-29
CVE-2021-27245 [HIGH] CWE-693 CVE-2021-27245: This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 prior to
This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 prior to Archer C7(US)_V5_210125 and Archer A7(US)_V5_200220 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of IPv6 connections. The issue results from the lack of proper filtering of IPv
nvd
CVE-2020-5795P4MEDIUMCVSS 6.2v2007212020-11-06
CVE-2020-5795 [MEDIUM] CWE-59 CVE-2020-5795: UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200721 allows an authenticated ad
UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200721 allows an authenticated admin user, with physical access and network access, to execute arbitrary code after plugging a crafted USB drive into the router.
nvd